Adobe Security Vulnerabilities (CVEs)
Track 1,274 security vulnerabilities affecting Adobe products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
Adobe Experience Manager versions 6.5.21 and earlier contain a stored cross-site scripting vulnerability in form fields. An attacker can inject malici...
Dec 10, 2024This stored Cross-Site Scripting (XSS) vulnerability in Adobe Experience Manager allows attackers to inject malicious JavaScript into vulnerable form ...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored Cross-Site Scripting vulnerability where attackers can inject malicious JavaScri...
Dec 10, 2024This DOM-based XSS vulnerability in Adobe Experience Manager allows attackers to execute arbitrary JavaScript in victims' browsers by tricking them in...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored Cross-Site Scripting (XSS) vulnerability that allows attackers to inject malicio...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored cross-site scripting vulnerability in form fields. Attackers can inject maliciou...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored Cross-Site Scripting (XSS) vulnerability where attackers can inject malicious sc...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored Cross-Site Scripting vulnerability where attackers can inject malicious JavaScri...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored cross-site scripting vulnerability in form fields. An attacker can inject malici...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a DOM-based Cross-Site Scripting vulnerability that allows attackers to execute arbitrary...
Dec 10, 2024This reflected Cross-Site Scripting (XSS) vulnerability in Adobe Experience Manager allows attackers to execute malicious JavaScript in victims' brows...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored cross-site scripting vulnerability where attackers can inject malicious JavaScri...
Dec 10, 2024This CVE describes a stored Cross-Site Scripting (XSS) vulnerability in Adobe Experience Manager (AEM) versions 6.5.21 and earlier, allowing attackers...
Dec 10, 2024This DOM-based Cross-Site Scripting (XSS) vulnerability in Adobe Experience Manager allows attackers to execute arbitrary JavaScript code in victims' ...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored cross-site scripting vulnerability in form fields. An attacker can inject malici...
Dec 10, 2024This stored Cross-Site Scripting (XSS) vulnerability in Adobe Experience Manager allows attackers to inject malicious JavaScript into vulnerable form ...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a DOM-based Cross-Site Scripting vulnerability that allows attackers to execute arbitrary...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored XSS vulnerability where attackers can inject malicious JavaScript into form fiel...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored cross-site scripting vulnerability in form fields. An attacker can inject malici...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored cross-site scripting (XSS) vulnerability where attackers can inject malicious Ja...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored XSS vulnerability where attackers can inject malicious JavaScript into form fiel...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored Cross-Site Scripting (XSS) vulnerability where attackers can inject malicious sc...
Dec 10, 2024This DOM-based XSS vulnerability in Adobe Experience Manager allows attackers to inject malicious scripts that execute in victims' browsers when they ...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a DOM-based Cross-Site Scripting vulnerability that allows attackers to execute arbitrary...
Dec 10, 2024This DOM-based XSS vulnerability in Adobe Experience Manager allows attackers to inject malicious scripts through manipulated URLs or user input, exec...
Dec 10, 2024This DOM-based XSS vulnerability in Adobe Experience Manager allows attackers to execute arbitrary JavaScript in victims' browsers by manipulating DOM...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier have an improper access control vulnerability that allows low-privileged attackers to bypass secu...
Dec 10, 2024Adobe Experience Manager versions 6.5.21 and earlier contain a stored Cross-Site Scripting (XSS) vulnerability where attackers can inject malicious sc...
Dec 10, 2024This DOM-based XSS vulnerability in Adobe Experience Manager allows attackers to execute arbitrary JavaScript in victims' browsers by tricking users i...
Dec 10, 2024This reflected Cross-Site Scripting (XSS) vulnerability in Adobe Connect allows attackers to execute malicious JavaScript in victims' browsers by tric...
Dec 10, 2024This reflected Cross-Site Scripting (XSS) vulnerability in Adobe Connect allows attackers to execute malicious JavaScript in victims' browsers by tric...
Dec 10, 2024Adobe Connect versions 12.6, 11.4.7 and earlier contain an open redirect vulnerability (CWE-601) that allows attackers to redirect users to malicious ...
Dec 10, 2024CVE-2024-54038 is an improper access control vulnerability in Adobe Connect that allows low-privileged attackers to bypass security measures. This aff...
Dec 10, 2024This stored Cross-Site Scripting (XSS) vulnerability in Adobe Connect allows attackers to inject malicious JavaScript into vulnerable form fields. Whe...
Dec 10, 2024This reflected Cross-Site Scripting (XSS) vulnerability in Adobe Connect allows unauthenticated attackers to execute malicious JavaScript in victims' ...
Dec 10, 2024This reflected Cross-Site Scripting (XSS) vulnerability in Adobe Connect allows unauthenticated attackers to execute malicious JavaScript in victims' ...
Dec 10, 2024Adobe InDesign has a NULL pointer dereference vulnerability that allows attackers to crash the application by tricking users into opening malicious fi...
Dec 10, 2024Adobe Animate versions 23.0.8, 24.0.5 and earlier contain a use-after-free vulnerability that could allow arbitrary code execution when a user opens a...
Dec 10, 2024Adobe Connect versions 12.6, 11.4.7 and earlier contain a stored Cross-Site Scripting (XSS) vulnerability where attackers can inject malicious scripts...
Dec 10, 2024This stored Cross-Site Scripting (XSS) vulnerability in Adobe Connect allows attackers to inject malicious JavaScript into vulnerable form fields. Whe...
Dec 10, 2024Adobe Animate versions 23.0.8, 24.0.5 and earlier contain a buffer underflow vulnerability that could allow arbitrary code execution when a user opens...
Dec 10, 2024CVE-2024-52995 is a heap-based buffer overflow vulnerability in Adobe Substance3D Sampler that allows arbitrary code execution when a user opens a mal...
Dec 10, 2024Adobe Photoshop Desktop versions 26.0 and earlier contain a Use After Free vulnerability that could allow an attacker to execute arbitrary code on a v...
Dec 10, 2024Adobe Animate versions 23.0.8, 24.0.5 and earlier contain an improper input validation vulnerability that allows arbitrary code execution when a user ...
Dec 10, 2024Adobe Animate versions 23.0.8, 24.0.5 and earlier contain an integer underflow vulnerability that could allow arbitrary code execution when a user ope...
Dec 10, 2024Adobe Animate versions 23.0.8, 24.0.5 and earlier contain an integer underflow vulnerability that could allow arbitrary code execution when a user ope...
Dec 10, 2024Adobe Animate versions 23.0.8, 24.0.5 and earlier contain an out-of-bounds write vulnerability that could allow arbitrary code execution when a user o...
Dec 10, 2024This CVE describes a heap-based buffer overflow vulnerability in Adobe InDesign that could allow an attacker to execute arbitrary code on the victim's...
Dec 10, 2024This CVE describes an out-of-bounds read vulnerability in Adobe InDesign that could allow an attacker to read sensitive memory contents. Exploitation ...
Dec 10, 2024Adobe InDesign has an out-of-bounds read vulnerability that could allow an attacker to read sensitive memory contents and potentially bypass ASLR prot...
Dec 10, 2024Why Monitor Adobe Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 1,274+ known vulnerabilities affecting Adobe products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Adobe packages in under 60 seconds. No agents required - completely agentless scanning that works across Adobe deployments.
Free vulnerability database: Access detailed information about every Adobe CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Adobe CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
